General
-
Target
04916727d46c51cfead87907320a208e1c0bc64cd3c11e24dd0c0d1cabaad74c
-
Size
903KB
-
Sample
240620-wzyvts1ekd
-
MD5
cc8819fe9ab8c017c0fb615821ea6c69
-
SHA1
4b9d635e0cc1286a54611301115ff88eebc52ec0
-
SHA256
04916727d46c51cfead87907320a208e1c0bc64cd3c11e24dd0c0d1cabaad74c
-
SHA512
372ff8a633068d858b4e1ee1b25071a82c6867f7e1cd6b09137fea3f9d28e5317602b2724c456f79c5e8e0d13b5ef05a9d70392f7ecffc76121dc0270fd2940d
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5l:gh+ZkldoPK8YaKGl
Static task
static1
Behavioral task
behavioral1
Sample
04916727d46c51cfead87907320a208e1c0bc64cd3c11e24dd0c0d1cabaad74c.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
04916727d46c51cfead87907320a208e1c0bc64cd3c11e24dd0c0d1cabaad74c.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
revengerat
Marzo26
marzorevenger.duckdns.org:4230
RV_MUTEX-PiGGjjtnxDpn
Targets
-
-
Target
04916727d46c51cfead87907320a208e1c0bc64cd3c11e24dd0c0d1cabaad74c
-
Size
903KB
-
MD5
cc8819fe9ab8c017c0fb615821ea6c69
-
SHA1
4b9d635e0cc1286a54611301115ff88eebc52ec0
-
SHA256
04916727d46c51cfead87907320a208e1c0bc64cd3c11e24dd0c0d1cabaad74c
-
SHA512
372ff8a633068d858b4e1ee1b25071a82c6867f7e1cd6b09137fea3f9d28e5317602b2724c456f79c5e8e0d13b5ef05a9d70392f7ecffc76121dc0270fd2940d
-
SSDEEP
24576:ZAHnh+eWsN3skA4RV1Hom2KXMmHaKZa5l:gh+ZkldoPK8YaKGl
Score10/10-
Drops startup file
-
Suspicious use of SetThreadContext
-